SecurityRatty: tag: control

Audit/Monitor Controls or Audit/Monitor BEFORE Control?

2008-02-28 11:38:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...controls after you put them in place; you monitor after you have authentication and authorization taken care of and you detect the violations after you organized your administration The paper even had the following picture, which is presented here to illustrate the point source: Forrester paper named above The paper clarifies: "With people...

AF083-022: Visualization for Command and Control of Cyberspace Operations

2008-10-18 00:01:42 by Tim Bass in The Complex Event Processing Blog

...Control of Cyberspace Operations TECHNOLOGY AREAS: Air Platform, Information Systems, Space Platforms, Human Systems The technology within this topic is restricted under the International Traffic in Arms Regulation (ITAR), which controls the export and import of defense-related material and services. Offerors must disclose any proposed use of...

Tags: visualization, information landscape, information, information operations, operations, visualization techniques, develop visualization techniques, cyber-attack, cyber-attack operations

Unencrypted/Unauthenticated Wireless Control Systems Are a Very Bad Idea

2008-01-11 20:33:14 by Chris Wysopal in Zero in a bit

A Polish teenager derailed a tram after building his own remote control to hack the control system. Best quote Transport command and control systems are commonly designed by engineers with little exposure or knowledge about security using commodity electronics and a little native wit

Tags: control systems, control system, remote control, polish teenager, transport command, native wit, commodity electronics, knowledge, exposure

Kill Switches and Remote Control

2008-07-01 06:48:37 by schneier in Schneier on Security

...control your computers -- and televisions and iPods and everything else -- to ensure that you didn't violate any copyright rules. But now everyone else wants to get their hooks into your gear. OnStar will soon include the ability for the police to shut off your engine remotely. Buses are getting the same capability , in case terrorists want...

Tags: wireless devices, devices, devices inevitably, digital manners policies, prevent, prevent security cameras, difficult security, cameras, prevent students

US Government Won't Cede Control Over DNS Root Zone

2008-08-01 10:54:13 by Editor in Cheap Hack

...control it now has over changes to the Internet's DNS root zone file. ICANN manages the DNS root zone, but according to terms of an agreement between it and the NTIA. The distribution of changes in the zone file to the various root servers across the world is performed by VeriSign. ICANN's authority to administer various aspects of the...

Tags: control, dns root zone, baker, joint project agreement, agreement, baker letter pulls, letter, internet dns derives, internet

U.S. Government Won't Cede Control Over DNS Root Zone

2008-08-01 10:54:13 by Editor in Cheap Hack

...control it now has over changes to the Internet's DNS root zone file. ICANN manages the DNS root zone, but according to terms of an agreement between it and the NTIA. The distribution of changes in the zone file to the various root servers around the world is performed by VeriSign. The authority of the Internet Corporation for Assigned Names...

Tags: control, dns root zone, baker, joint project agreement, agreement, baker letter pulls, internet, letter, internet domain

robots.txt is NOT a security control

2008-09-30 07:24:56 by Editor in Adventures in Security

...control. Not only is it not a security control, it also doesnt add much value beyond helping control which search engines get to index your Web sites and what they get to index. In other words, they have no value when attempting to stop an attacker from retrieving information during target reconnaissance activities

Tags: security control, control, target reconnaissance activities, web sites, index, txt file, red flag, engines, stop

The role of control depth in assessment quality

2007-09-12 12:17:00 by Bryan in practical risk management

...control... there was no insight into the underlying quality of the control and whether it had actual value If you want to check boxes, surface audits are fine. But if you want to understand your true security exposure, you have to dig deeper. It's not enough to ask whether regular backups are taken and stored offsite. You have to ask how...

Tags: audit, external sox audit, physical security, security audit, questions, pretty in-depth questions, dig deeper, control, surface

The physical access control project planner

2008-04-30 00:00:00 by HASH0x8b43198 in Network World on Security

...control systems. Looking especially at the full cycle of implementation from the end-user's standpoint, this primer highlights the important and often unforeseen issues that frequently accompany access control projects. Planning for these common issues frequently translates into saved time, resources, and investment, whereas a lack of...

Tags: issues, common issues frequently, lead cost overruns, saved time, implementation, unreliable system, primer highlights, fundamental information, lost time

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo